Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3876

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3876
Last Modified 07 Mar 2011 09:27:18
Published 29 Nov 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3876

Summary

Multiple SQL injection vulnerabilities in adcbrowres.php in AD Center ADC2000 NG Pro 1.2 and NG Pro Lite allow remote attackers to execute arbitrary SQL commands via the (1) cat and (2) lang parameters.

Vulnerable Systems

Application

  • Td-systems Adc2000 Ng Pro 1.2

  • Td-systems Adc2000 Ng Pro Lite


References

VUPEN - ADV-2005-2613

SECUNIA - 17744

BID - 15595

OSVDB - 21131

MISC - http://pridels0.blogspot.com/2005/11/adc2000-ng-pro-sql-inj-vuln.html


Last Updated: 27 May 2016 10:41:04